MalwareIntelligence is a site dedicated to research on all matters relating to anti-malware security, criminology computing and information security in general, always from a perspective closely related to the field of intelligence.

29.1.09

IE Defender is one among many false security programs (scareware, also called rogue) that constantly bombard users with intent to infect their computers through Web sites that pretend to be legitimate.

However, there are detecting new strategies for dissemination and deceit don't share the same methodology for download from the same website scareware, but who seek to trick users to achieve their goals, in this case, IE Defender is being spread to through websites that promise to download mp3 music and movies.

In either case, you download the album or movie downloads but promised one of the variants in the family of IE Defender.

All pages used to spread threats share the same IP address (216.240.151.112) for Download:

A minor detail not identifying these malicious sites is that they simulate almost all pages hosted on sites that allow you to store files like Megaupload, Rapidshare or directly, sites designed for downloading warez.